Network Security

I am using Cisco NAC and recently my clients are recieving the error message that the NAC server can not be contacted but the NAC event logs are logging the following message "Invalid validation request" authentication error.  Please help!!!  Cisco T...

Guys,I have a NAC with two roles configured "Person" and "Person1" and I saw that when Person is authenticated it's put on Online users OOB and certified Devices but when Person1 is authenticated it's just appear as Online users OOB but does not appe...

Hi,We are in the process of migration some Nortel phones at various remote locations.These remote sites are not managed sites and some of them are using their own internal IP address forwarding traffic to MPLS edge router.With the PIX, using Static N...

Hi all.Can someone provide me a simple example of triggering predefined eem applets remotely ?Suppose i have 2 routers, R1 and R2. I made an applet on R2 which will be triggered remotely by R1 when some event on R1 occurs. Can someone provide me a si...

I'm using Pix 520 rev 4.2I need to enable a computer in the DMZ RDP access to computers (entire scope) behind the INSIDE interface. How can i do this?Ex. Machine (192.168.4.5/24 only) in DMZ needs to RDP into Machines (172.16.5.x/21) on the INSIDE ne...

We use Websense with our ASAI'm wanting to move Websense just inside our ASA5520 inside interface. I'm concerned that Websense's license count will increase. Anyone have a way to get an accurate count of IPs that an ASA inside interface sees?

Hi All,I have upgrade my ASA from 8.0.4 to 8.2.2 and post that ftp data traffic going over the VPN terminating on the ASA is not working,  do i need to do any configuration change for this.

We have an ASA5510 which we need send 12 Multicast through.  I am using igmp join-groups on the OUTSIDE interface so that it will forward the packets.  Occasionally we need to limit some of the groups because its private video. I have tried setting u...

Hello all,Just wonder if anyone ran into this problem before and give me a hand on this.  Today for some reason some (not all) users are having problemwith ftp to the vendor site out to internet.  It was working yesterday.  I tested on my PC and I go...

HelloCould someone give me a hand with INSIDE access to the DMZ interface? I've set this up in the past, and am unsure of the problem I am running into. I think that when a host access a server on the dmz, instead of a session being setup the outboun...

Hi all,We have ASA5510/20 running in NAT/routed mode. We received a request to open ports for internal server to make FTPS connection to outside servers. Internal server initiate the connection. External vendor asked us to open 9021 (FTP ctrl) & 2000...

Hi my setup is pretty striaght forward.Topology is something like this.ISP1--->Router---->ASA------>internal N/W.Now I added one more ISP in the network to have redundancy in case primary goes down.Cable from ISP2 goes to one of the backup int direct...

Dear AllI want to create a DMZ in in my ASA 5510 to keep my web servers and FTP servers there.We have a leased line internet that connects to 1841 and then ASA 5510.Can any one help me regarding that .

How can I tell using SNMP whether an IP address configured on an interface is primary or secondary?  Thanks for any help.